Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

NAT exemption to no nat control after upgrade

Hello all,

We are presently running FWSM 2.3(3)6 and are upgrading to the 3.2 code train. My question is if we are presently running NAT exemption with plans of implementing no nat control post upgrade, are there any caveats/implications to doing so. Will typing "no nat control" post upgrade wipeout any nat commands from the configuration and is it that simple???

Regards,

Rick

1 REPLY
Silver

Re: NAT exemption to no nat control after upgrade

If you disable NAT control (no nat-control) then you can remove the outside NAT exemption command. By default, the FWSM creates NAT sessions for all connections even if you do not use NAT. For example, a session is created for each untranslated connection even if you do not enable NAT control, you use NAT exemption or identity NAT, or you use same security interfaces and do not configure NAT.

123
Views
0
Helpful
1
Replies